All the latest UK technology news, reviews and analysis
|
|
|
17 Sep 2007
Identity thieves are increasingly focusing on social networking sites to gather information on targets, and Symantec's latest threat report has advised users to lie about some of their details.
Guy Bunker, chief scientist at Symantec, told vnunet.com that social networking sites are being used in a number of ways to spread malware.
Firstly, because users tend to trust other users, the sites are being used to send people to other sites that have malware installed. Secondly, such sites are being used to harvest information that could be used for identity theft.
"There has always been grooming of children on social networking sites, but people are now moving into the theft and phishing side of things," said Bunker.
"People tend to trust other users on these sites and they have a lot of personal information on them.
"Best practice is to lie about your date of birth because there is no real reason to have it up there and it could be a useful way of misleading the identity thieves."
The US is still leading the world in computer crime, according to the Symantec report, hosting the most underground servers used for trading hacking tools and stolen information.
The country also hosts the most spamming servers, and servers in the country are the target of nearly two thirds of worldwide denial of service attacks.
However, China seems to be forming the backstay of botnets used in attacks. The country hosted more infected PCs than any other, and Beijing accounted for seven per cent of the world's botnet-controlled PCs.
"This is a reflection of the maturity of the Chinese market," said Bunker. " There are a lot of people going online in China but very few are using security software and this is reflected in the figures."
Latest stories from Software
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Hands on with the highly anticipated Android 4.0 Ice Cream Sandwich hybrid tablet
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Application Support Analyst with exceptional communication...
Software Development Manager- Rugby/Warwickshire - Attractive...
Working for a leading Retail organisation, you will be...
business analyst, tester, fixed income, fi, derivatives...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Too much information is available to fraudsters via these sites
This article is right to suggest that there is now a huge amount of personal information available on these kinds of sites, with people more and more willing to disclose personal information. People underestimate just how easy it is for fraudsters to piece together data sources and create a profile of an individual. Largely criminals are using these sites to directly impersonate individuals. However, organised crime rings also use social networking sites to confirm indentities and information gained from other sources. The major concern here is people?s willingness to hand over personal information without thinking about the implications. It is usually the young and inexperienced that are the most vulnerable. Individuals really need to start being more aware of these threats before disclosing information. The following steps need to be taken for the public to protect itself when visiting social networking sites: ?Do not issue factually identifying information such as date of birth, address etc. Instead give approximate numbers to describe your profile, e.g ?I am between 18 and 25? ?Need to treat web users as complete strangers ? you wouldn?t give a person you met on the street your address, so why give it to someone online that you?ve never met before?
Posted by: Bart Patrick, SAS UK 17 Sep 2007